Day[0]

281 Episodes

1. [bounty] XSS for NFTs, a VMWare Workspace ONE UEM SSRF, and GitLab CI Container Escape

   Published: 3/05/2022
2. [binary] Getting into Vulnerability Research and a FUSE use-after-free

   Published: 28/04/2022
3. [bounty] A Struts RCE, Broken Java ECDSA (Psychic Signatures) and a Bad Log4Shell Fix

   Published: 26/04/2022
4. [binary] Another iOS Bug and Edge Chakra Exploitation

   Published: 21/04/2022
5. [bounty] Taking Over an Internal AWS Service and an Interesting XSS Vector

   Published: 19/04/2022
6. [binary] A subtle iOS parsing bug and a PHP use-after-free

   Published: 14/04/2022
7. [bounty] A Double-Edged SSRF, Pritunl VPN LPE, and a NodeBB Vuln

   Published: 12/04/2022
8. [binary] FORCEDENTRY Sandbox Escape and NetFilter Bugs

   Published: 7/04/2022
9. [bounty] Spring4Shell, PEAR Bugs, and GitLab Hardcoded Passwords

   Published: 5/04/2022
10. [binary] Pwning WD NAS, NetGear Routers, and Overflowing Kernel Pages

    Published: 31/03/2022
11. [bounty] GitLab Arbitrary File Read and Bypassing PHP's filter_var

    Published: 29/03/2022
12. [binary] Chrome Heap OOB Access and TLStorm

    Published: 24/03/2022
13. [bounty] DOMPDF XSS to RCE, Chrome Leaking Envrionment Vars, and cr8escape

    Published: 22/03/2022
14. [binary] A Windows UAF, Branch Prediction Bugs, and an io_uring Exploit

    Published: 17/03/2022
15. [bounty] Pascom RCE, AutoWarp, and a GKE Container Escape

    Published: 15/03/2022
16. [binary] Dirty Pipe and Analyzing Memory Tagging

    Published: 10/03/2022
17. [bounty] Facebook Exploits, pfSense RCE, and MySQLjs SQLi

    Published: 8/03/2022
18. [binary] ImageGear JPEG Vulns, NetFilter, and a LibCurl Memory Disclosure

    Published: 3/03/2022
19. [bounty] DynamicWeb RCE, VMWare Bugs, and Exploiting GitHub Actions

    Published: 1/03/2022
20. [binary] Zynq-7000 Secure Boot Bypass and Compiler-Created Bugs

    Published: 24/02/2022